|
196731
|
7.5 |
HIGH
Network
|
f5
|
big-ip_access_policy_manager
big-ip_advanced_firewall_manager
big-ip_analytics
big-ip_application_acceleration_manager
big-ip_application_security_manager
big-ip_domain_name_system
…
|
On BIG-IP 15.1.0-15.1.0.5, 14.1.0-14.1.2.3, 13.1.0-13.1.3.4, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2, Virtual servers with a OneConnect profile may incorrectly handle WebSockets related HTTP response he…
|
NVD-CWE-noinfo
|
CVE-2020-5931
|
2024-11-21 14:34 |
2020-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196732
|
6.5 |
MEDIUM
Network
|
f5
|
big-ip_access_policy_manager
big-ip_advanced_firewall_manager
big-ip_analytics
big-ip_application_acceleration_manager
big-ip_application_security_manager
big-ip_domain_name_system
…
|
On BIG-IP 13.1.0-13.1.3.4, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2, when negotiating IPSec tunnels with configured, authenticated peers, the peer may negotiate a different key length than the BIG-IP con…
|
CWE-326
Inadequate Encryption Strength
|
CVE-2020-5938
|
2024-11-21 14:34 |
2020-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196733
|
7.5 |
HIGH
Network
|
f5
|
big-ip_advanced_firewall_manager
|
On BIG-IP AFM 15.1.0-15.1.0.5, the Traffic Management Microkernel (TMM) may produce a core file while processing layer 4 (L4) behavioral denial-of-service (DoS) traffic.
|
NVD-CWE-noinfo
|
CVE-2020-5937
|
2024-11-21 14:34 |
2020-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196734
|
5.5 |
MEDIUM
Local
|
checkpoint
|
zonealarm
|
Check Point ZoneAlarm before version 15.8.139.18543 allows a local actor to delete arbitrary files while restoring files in Anti-Ransomware.
|
NVD-CWE-noinfo
|
CVE-2020-6022
|
2024-11-21 14:34 |
2020-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196735
|
7.8 |
HIGH
Local
|
nvidia
|
geforce_experience
|
NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in the ShadowPlay component which may lead to local privilege escalation, code execution, denial of service or inf…
|
NVD-CWE-noinfo
|
CVE-2020-5990
|
2024-11-21 14:34 |
2020-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196736
|
7.8 |
HIGH
Local
|
nvidia
|
geforce_experience
|
NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in its services in which a folder is created by nvcontainer.exe under normal user login with LOCAL_SYSTEM privileg…
|
NVD-CWE-noinfo
|
CVE-2020-5978
|
2024-11-21 14:34 |
2020-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196737
|
7.8 |
HIGH
Local
|
nvidia
|
geforce_experience
|
NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in NVIDIA Web Helper NodeJS Web Server in which an uncontrolled search path is used to load a node module, which m…
|
CWE-426
Untrusted Search Path
|
CVE-2020-5977
|
2024-11-21 14:34 |
2020-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196738
|
8.8 |
HIGH
Network
|
tipsandtricks-hq
|
simple_download_monitor
|
SQL injection vulnerability in Simple Download Monitor 3.8.8 and earlier allows remote attackers to execute arbitrary SQL commands via a specially crafted URL.
|
CWE-89
SQL Injection
|
CVE-2020-5651
|
2024-11-21 14:34 |
2020-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196739
|
6.1 |
MEDIUM
Network
|
tipsandtricks-hq
|
simple_download_monitor
|
Cross-site scripting vulnerability in Simple Download Monitor 3.8.8 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2020-5650
|
2024-11-21 14:34 |
2020-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196740
|
7.2 |
HIGH
Network
|
nagios
|
nagios_xi
|
Improper neutralization of argument delimiters in a command in Nagios XI 5.7.3 allows a remote, authenticated admin user to write to arbitrary files and ultimately execute code with the privileges of…
|
CWE-88
Argument Injection
|
CVE-2020-5792
|
2024-11-21 14:34 |
2020-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
